$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: v7bU4SgR0ryqljAOaenBNdwX9Or0rKjD1yXrE10Vp4c= Subject key identifier: 8C:ED:62:55:1C:1B:C6:09:30:69:58:BF:A0:06:B7:DD:C7:AD:51:4C Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 63C9B629BAF931743E1BC9AE308EDBC6C2D901A2 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:02 +0000 ROA not before: Mon 02 Jun 2025 00:58:02 +0000 ROA not after: Mon 01 Jun 2026 01:03:02 +0000 asID: 38778 IP address blocks: 203.201.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 19:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c9:b6:29:ba:f9:31:74:3e:1b:c9:ae:30:8e:db:c6:c2:d9:01:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:02 2025 GMT Not After : Jun 1 01:03:02 2026 GMT Subject: CN=8CED62551C1BC609306958BFA006B7DDC7AD514C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:bf:5f:7f:e7:de:4a:a5:1b:b4:a8:e1:ec: 45:e8:ab:8a:e9:ea:50:4e:cd:5e:07:a7:6a:3d:f8: 03:36:51:52:63:da:77:da:52:d0:9d:df:de:1a:9d: 86:85:8f:f3:b5:f0:47:84:31:37:37:9d:ae:c0:c5: 20:45:c1:ef:00:e5:ce:01:d7:84:db:af:a9:68:8f: 13:c9:3d:44:ed:1f:85:be:cd:b6:2b:3e:1f:42:a6: ff:49:f1:e9:b5:3e:e1:5a:00:8a:84:2f:2a:51:e6: e9:0d:5c:6b:da:3e:b0:30:3c:cd:85:36:c8:77:b4: fd:94:e5:a0:f8:db:67:b9:21:66:fb:dd:9e:86:90: f4:d1:fb:3b:44:37:c1:c4:eb:d9:8e:5d:be:5a:2c: 98:ff:07:b3:55:0b:57:3d:d0:c2:89:f1:a7:a7:87: 1e:e1:24:cd:21:76:f0:45:12:5e:57:4d:f1:57:14: 1f:38:51:82:2c:3b:fa:9e:0f:93:88:44:dc:de:6e: 69:50:d3:a9:35:6a:42:4f:35:f5:2e:c1:7a:45:9f: 55:88:91:00:c3:7a:a3:73:65:08:37:be:2c:3c:aa: f5:55:b9:72:9b:45:96:80:a9:74:52:8e:bf:30:20: f5:c9:57:2d:d5:94:fa:42:86:3c:44:cb:bf:64:85: 26:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:ED:62:55:1C:1B:C6:09:30:69:58:BF:A0:06:B7:DD:C7:AD:51:4C X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/24 Signature Algorithm: sha256WithRSAEncryption 20:2d:6f:5e:fb:ff:18:f3:29:77:38:48:36:e8:2a:ad:9c:d6: 50:c0:5a:ce:eb:7e:3c:5e:e9:1c:cb:c5:99:ef:c0:65:24:25: 78:b7:5d:7a:82:e1:14:fa:b0:ac:f8:ab:93:24:88:75:09:8f: 3b:b6:e2:66:d7:c2:65:3d:4b:e8:ce:9e:e1:1c:8a:a6:4e:71: df:4c:53:a5:9d:a5:6f:b0:d7:7d:4b:16:10:28:a9:0d:31:20: 5c:b6:94:2a:65:66:c1:ce:85:2d:76:c9:3a:5c:eb:b8:4c:6a: 9f:26:da:4a:05:75:be:20:f5:73:0e:c7:32:5b:af:f9:a7:dd: e6:b4:5e:f1:91:92:86:db:e2:30:a6:4b:87:74:8f:14:87:e1: bf:2c:35:c5:36:ec:16:26:a2:aa:ea:f2:48:9e:3e:05:90:4d: dd:64:55:1a:76:ec:6d:9e:af:3a:c8:20:1d:d8:33:a4:c2:09: f6:55:1f:b9:a2:0a:33:2b:9c:42:e8:58:26:d4:f0:5e:ae:01: e3:31:93:09:0d:56:1a:a6:2f:70:e9:e2:3b:df:05:76:1d:f4: 40:0e:16:19:aa:77:4d:37:82:7b:af:09:0b:3a:d4:55:81:04: cc:78:fa:b9:b0:f2:62:ec:7a:74:ad:21:97:27:45:37:14:ea: a0:eb:63:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY8m2Kbr5MXQ+G8muMI7bxsLZAaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDJaFw0yNjA2MDEwMTAzMDJaMDMxMTAvBgNV BAMTKDhDRUQ2MjU1MUMxQkM2MDkzMDY5NThCRkEwMDZCN0REQzdBRDUxNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+r9ff+feSqUbtKjh7EXoq4rp 6lBOzV4Hp2o9+AM2UVJj2nfaUtCd394anYaFj/O18EeEMTc3na7AxSBFwe8A5c4B 14Tbr6lojxPJPUTtH4W+zbYrPh9Cpv9J8em1PuFaAIqELypR5ukNXGvaPrAwPM2F Nsh3tP2U5aD422e5IWb73Z6GkPTR+ztEN8HE69mOXb5aLJj/B7NVC1c90MKJ8aen hx7hJM0hdvBFEl5XTfFXFB84UYIsO/qeD5OIRNzebmlQ06k1akJPNfUuwXpFn1WI kQDDeqNzZQg3viw8qvVVuXKbRZaAqXRSjr8wIPXJVy3VlPpChjxEy79khSbbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjO1iVRwbxgkwaVi/oAa33cetUUwwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8msMA0GCSqG SIb3DQEBCwUAA4IBAQAgLW9e+/8Y8yl3OEg26CqtnNZQwFrO6348Xukcy8WZ78Bl JCV4t116guEU+rCs+KuTJIh1CY87tuJm18JlPUvozp7hHIqmTnHfTFOlnaVvsNd9 SxYQKKkNMSBctpQqZWbBzoUtdsk6XOu4TGqfJtpKBXW+IPVzDscyW6/5p93mtF7x kZKG2+IwpkuHdI8Uh+G/LDXFNuwWJqKq6vJInj4FkE3dZFUaduxtnq86yCAd2DOk wgn2VR+5ogozK5xC6Fgm1PBergHjMZMJDVYapi9w6eI73wV2HfRADhYZqndNN4J7 rwkLOtRVgQTMePq5sPJi7Hp0rSGXJ0U3FOqg62MH -----END CERTIFICATE-----Generated at Sat Oct 25 04:21:13 2025 by rpki-client